I have a problem that I hope is easy for you guys to help me with.

At work we have 4 computers that currently are not connected to the internet, only to a local network for our point of sale system. Our debit machines are connected to the PoS computers by RJ45 to serial cables and the debit terminals are connected through an unmanaged switch to our modem to access the internet. Our debit processing company is forcing us to change terminals and these new ones take ethernet in and send it to the computers to communicate through TCP/IP instead of serial. That will force the PoS computers to have access to the internet. We would rather they didn’t have access to the net. I called our ISP today to see if MAC address filtering was a possibility on our modem and it is not. So I am looking for a simple solution to keep the NIC of each of the computers functional but prevent them from accessing the internet.

Would simply upgrading the switch they are on to a managed one or a router, be all I need to do so I can set up a MAC filter? If so any suggestions on one would be appreciated. Is it even possible for wired connections? If not any help would be greatly appreciated. Thanks in advance!

  • e60deluxe@alien.topB
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    many options, here are two:

    1. you can set manual IPs on the terminals and simply don’t set a default gateway.

    2. you can use literally any proper, business router and create the required access rules.

    • sanbon909@alien.topOPB
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      I have read about your first suggestion. This sounds simple enough but I was worried that it would break the TCP/IP connection between the computer and the debit terminal. I am guessing it won’t??

      • /home/pineapplelover
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        I think most routers can block internet access with mac address or ip address. Doesn’t need to be business router.